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Office Action dated December 3, 2004 
Response to Office Action dated June 2, 2005 

IN THE CLAIMS 

Please amend the claims as follows (all claims listed): 

1. (Original) A mobile system, comprising: 

a host chipset; 

a locator subsystem connected to the host chipset and arranged to determine a current 
location of the mobile system; and 

a main storage connected to the host chipset and arranged to store an operating system 
(OS) and contain an OS-Present application and/or a Pre-OS application configured to enforce 
security policies during user authentication, to access the locator subsystem and determine 
whether the mobile system may have been stolen or used inappropriately based on the security 
policies. 

2. (Original) The mobile system as claimed in claim 1, wherein said main storage comprises: 

a main memory arranged to store the operating system (OS), and the OS-Present 
application which is executed while the operating system (OS) is present; and 

a flash memory arranged to store the Pre-OS application which is executed during boot 
up before the operating system (OS) is loaded. 
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3. (Original) The mobile system as claimed in claim 2, further comprising: 

a protected storage configured to support the Pre-OS application and the OS-Present 
application and to store configuration data, the security policies, authentication data and other 
information obtained from the Pre-OS application and the OS-Present application. 

4. (Original) The mobile system as claimed in claim 3, further comprising: 

a first interface arranged to provide the Pre-OS application access to the protected 
storage; and 

a second interface arranged to provide the OS-Present application access to the protected 
storage. 

5. (Original) The mobile system as claimed in claim 3, wherein said protected storage is a non- 
volatile readable and writeable memory device. 

6. (Currently Amended) The mobile system as claimed in claim 3, wherein said locator 
subsystem corr e sponds to is a radio frequency (RF) based locator subsystem for determining the 
current location of the mobile system. 
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7. (Original) The mobile system as claimed in claim 6, wherein said security policies for the 
Pre-OS application and the OS-Present application include a designated number of failed log-on 
attempts, an unauthorized change attempted on selected platform policies, an unauthorized use of 
monitored services, a designated time expiration based on a renewable certificate, or a lack of 
communication to a policy server or to a security token, and an unauthorized deletion of the 
protected storage. 

8. (Currently Amended) The mobile system as claimed in claim 7, wherein said Pre-OS 
application corr e sponds to is a system basic input/output start-up (BIOS) that is configured in 
accordance with Intel® Protected Access Architecture (IPAA) d e scrib e d in Application Int e rfac e 
Sp e cification, R e vision 1.0 , and that is executed during boot up before the operating system (OS) 
is loaded. 

9. (Original) The mobile system as claimed in claim 8, wherein said system BIOS is executed 
during boot up to check a Pre OS security policy record, collect location based information from 
the RF-based locator subsystem, determine if there is a violation of the security policies during 
user authentication and, if there is a violation of the security policies, make a decision that the 
mobile system may have been stolen or used inappropriately. 
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10. (Original) The mobile system as claimed in claim 9, wherein said system BIOS is executed 
during boot up to further report the location of the mobile system to a proper authority, via an 
Internet or a RF-based wireless network. 

11. (Original) The mobile system as claimed in claim 7, wherein said OS Present application is 
executed to obtain an OS security record, check location based information, determine if an 
action is required based on the security policies and, if an action is required, then report a 
violation to an OS readable location in the protected storage and/or an external event monitoring 
facility. 

12. (Currently Amended) The mobile system as claimed in claim 11, wherein said RF based 
locator subsystem corr e spond s to is a Global Positioning System (GPS) receiver connected to the 
host chipset and arranged to contain an antenna complex for receiving the current location of the 
mobile system. 

13. (Currently Amended) The mobile system as claimed in claim 11, wherein said RF based 
locator subsystem corr e sponds to is a RF transmitter that is part of a stolen device recovery 
system to provide location based information and is activated upon an occurrence of a trigger 
event to broadcast a silent, coded radio signal to the stolen device recovery system, via a radio 
tower, for enabling the police to track and recover the stolen device. 
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14. (Currently Amended) The mobile system as claimed in claim 1 1, wherein said RF-based 
locator subsystem corr e sponds to is a Bluetooth transceiver that is part of a Bluetooth based 
security system including a central security server and a network of Bluetooth (voice/data) 
Access Points (BTAPs) installed in a designated area to provide security services for the mobile 
system, including asset control, remote monitoring and tracking of the mobile system, through 
the Internet or the RF-based wireless network. 



15. (Original) A mobile system comprising: 
a host chipset; 

a RF-based locator subsystem connected to the host chipset and arranged to determine a current 
location of the mobile system; 

a main memory connected to the host chipset and arranged to store an operating system (OS) and 
an OS-Present application executed while the operating system (OS) is present; and 

a flash memory connected to the host chipset and arranged to store a Pre-OS application 
executed during boot up before the operating system (OS) is loaded and configured to enforce 
security policies during user authentication, to access the RF-based locator subsystem and 
determine whether the mobile system may have been stolen or used inappropriately based on the 
security policies. 
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16. (Original) The mobile system as claimed in claim 15, wherein said security policies include 
a designated number of failed log on attempts, an unauthorized change attempted on selected 
platform policies, an unauthorized use of monitored services, a designated time expiration based 
on a renewable certificate, or a lack of communication to a policy server or to a security token, 
and an unauthorized deletion of the protected storage. 

17. (Currently Amended) The mobile system as claimed in claim 16, wherein said Pre-OS 
application corr e sponds to is a system basic input/output start up (BIOS) that is configured in 
accordance with Intel® Protected Access Architecture (IPAA) d e scrib e d in Application Int e rfac e 
Sp e cification, R e vision 1.0 , and that is executed during boot up before the operating system (OS) 
is loaded. 

18. (Original) The mobile system as claimed in claim 17, wherein said system BIOS is executed 
during boot up to check a Pre-OS security policy record, collect location based information from 
the RF-based locator subsystem, determine if there is a violation of the security policies during 
user authentication and, if there is a violation of the security policies, make a decision that the 
mobile system may have been stolen or used inappropriately. 
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19. (Original) The mobile system as claimed in claim 18 5 wherein said system BIOS is executed 
during boot up to further report the current location of the mobile system to a proper authority, 
via an Internet or a RF-based wireless network. 

20. (Original) The mobile system as claimed in claim 15, wherein said OS-Present application is 
executed to obtain an OS security record, check location based information, determine if an 
action is required based on the security policies and, if an action is required, then report a 
violation to an OS readable location in the protected storage and/or an external event monitoring 
facility. 

21. (Currently Amended) The mobile system as claimed in claim 15, wherein said RF-based 
locator subsystem corr e sponds to is a Global Positioning System (GPS) receiver connected to the 
host chipset and arranged to contain an antenna complex for receiving the current location of the 
mobile system. 

22. (Currently Amended) The mobile system as claimed in claim 15, wherein said RF-based 
locator subsystem corr e sponds to is a RF transmitter that is part of a stolen device recovery 
system to provide location based information and is activated upon an occurrence of a trigger 
event to broadcast a silent, coded radio signal to the stolen device recovery system, via a radio 
tower, for enabling the police to track and recover the stolen device. 
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23. (Currently Amended) The mobile system as claimed in claim 15, wherein said RF-based 
locator subsystem corr e sponds to is a Bluetooth™ transceiver that is part of a Bluetooth™ based 
security system including a central security server and a network of Bluetooth (voice/data) 
Access Points (BTAPs) installed in a designated area to provide security services for the mobile 
system, including asset control, remote monitoring and tracking of the mobile system, through 
the Internet or the RF-based wireless network. 



24. (Currently Amended) A computer readable medium having stored thereon a set of system 
basic input/output start up "system BIOS" instructions configur e d in accordanc e with Intel© 
Prot e ct e d Acc e ss Archit e cture (IPAA) which, when executed by a processor during start up, 
cause the processor to perform: 

initializing and testing a system platform; 

checking a Pre-OS security policy record for an approved trigger mechanism; 

collecting location based information from the approved trigger mechanism; 

determining if there is a violation of security policies during user authentication; and 

if there is a violation of the security policies, making a decision that the mobile system 
may have been stolen or used inappropriately; 

wherein said system BIOS instructions are configured in accordance with Intel® 
Protected Access Architecture (IPAA). 
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25. (Original) The computer readable medium as claimed in claim 24, wherein said system 
BIOS instructions further cause the processor to report the location based information indicating 
the current location of the mobile system to a proper authority, via an Internet or a RF-based 
wireless network, when there is a violation of the security policies. 

26. (Original) The computer readable medium as claimed in claim 24, wherein said security 
policies for the system BIOS instructions include a designated number of failed log on attempts, 
an unauthorized change attempted on selected platform policies, an unauthorized use of 
monitored services, a designated time expiration based on a renewable certificate, or lack of 
communication to a policy server or to a security token, and an unauthorized deletion of a 
protected storage. 
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